Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2DE162C0618311F1A06B0EE6CE1D38B0.roa
File: 2DE162C0618311F1A06B0EE6CE1D38B0.roa (raw, json)
Hash identifier: HniJsazjFszP6b95/HS75T93sUD2SBLEWd7y0+svuvM=
Subject key identifier: 39:0D:0C:0E:9B:7A:37:B6:C5:16:55:75:F3:B8:23:A3:D8:70:B6:D0
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01D1F1
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2DE162C0618311F1A06B0EE6CE1D38B0.roa
Signing time: Sat 06 Jun 2026 08:39:07 +0000
ROA not before: Sat 06 Jun 2026 08:39:02 +0000
ROA not after: Fri 10 Jul 2026 08:39:02 +0000
asID: 215691
IP address blocks: 154.202.74.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 15 Jun 2026 00:07:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 119281 (0x1d1f1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jun 6 08:39:02 2026 GMT
Not After : Jul 10 08:39:02 2026 GMT
Subject: CN=6a23dcab-6729
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:3c:79:c9:19:db:c7:57:c2:78:f2:0f:3d:09:
91:27:1d:df:87:73:ee:f4:b3:bc:66:17:2b:9a:c8:
36:44:04:23:4e:55:2d:22:c3:f2:21:9f:c3:2a:64:
0e:69:99:e9:30:01:d5:cd:55:bc:fc:11:d3:e2:c0:
8c:18:e1:22:98:2b:ab:18:94:cb:57:16:9d:62:fd:
5e:90:d7:68:f6:ff:1b:69:05:63:cc:7f:74:87:a7:
cd:5b:df:5d:a0:62:89:33:1d:23:99:44:d9:0d:95:
2e:dd:a8:bd:23:07:74:1c:57:19:d4:ff:0b:ff:62:
ad:db:34:65:a1:db:79:95:8c:97:84:31:56:e9:a5:
d1:18:7e:1c:fb:c7:4e:0e:62:16:4e:a5:49:9d:9c:
e6:65:0a:67:49:90:ab:c6:86:f7:bc:9a:4e:b6:08:
e1:db:d2:b3:57:21:48:1a:28:75:a9:5a:99:bb:f5:
9e:14:fa:0c:eb:1b:eb:ee:8a:26:28:4c:da:aa:77:
a8:6d:5a:68:bd:b7:20:ea:06:7c:ea:be:2e:4f:40:
c4:fe:32:14:ff:f8:4f:25:a6:e1:d9:47:88:b9:23:
3c:09:47:3a:24:62:36:31:ba:7d:75:8e:c0:3c:82:
d7:49:c7:a0:d5:bb:88:10:dd:02:d4:a6:93:ef:97:
c4:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:0D:0C:0E:9B:7A:37:B6:C5:16:55:75:F3:B8:23:A3:D8:70:B6:D0
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2DE162C0618311F1A06B0EE6CE1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.202.74.0/24
Signature Algorithm: sha256WithRSAEncryption
bc:2f:be:43:67:91:b4:1d:8e:f3:b3:06:cc:bf:9e:d6:8b:c3:
4d:62:90:ac:e7:4e:c7:d1:67:7e:fe:a9:c6:e0:75:fb:49:0c:
8f:7c:99:74:44:05:87:0f:f0:3d:fc:72:77:df:be:a3:af:2c:
dc:d0:1c:f0:b6:5f:2c:ab:26:74:0b:ba:90:d6:76:20:86:cf:
ae:4e:d2:4c:9b:8f:7f:d1:8c:14:b4:72:17:97:17:18:e6:e6:
60:9a:de:fd:a9:57:64:ed:fd:36:a5:a9:df:6f:2a:a9:d7:b1:
91:d0:bc:7a:95:0e:6e:d0:c1:1f:c0:65:19:72:df:aa:7a:3e:
d0:b0:09:3a:ec:cc:05:f5:eb:77:53:ed:90:72:05:05:7a:f6:
e2:3d:91:c6:e5:87:29:36:31:77:d9:26:30:a5:e6:46:a4:01:
da:ba:a4:e4:15:c7:6d:c5:90:cb:de:2d:17:9b:ad:59:e5:4d:
79:e9:88:c4:05:f8:2a:e1:bb:93:c3:ed:85:cf:78:56:28:40:
48:7d:64:90:28:ed:dd:91:a3:ac:fa:04:00:c8:b0:f2:52:9a:
4a:a6:fb:89:fe:40:44:14:a7:8b:69:ae:6d:81:05:4b:99:77:
42:9a:54:bf:90:03:6b:2c:85:92:75:f7:d4:b0:31:27:c4:90:
f2:2e:1d:1d
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAdHxMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjYwNjA2MDgzOTAyWhcNMjYwNzEwMDgzOTAyWjAYMRYw
FAYDVQQDEw02YTIzZGNhYi02NzI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAyjx5yRnbx1fCePIPPQmRJx3fh3Pu9LO8Zhcrmsg2RAQjTlUtIsPyIZ/D
KmQOaZnpMAHVzVW8/BHT4sCMGOEimCurGJTLVxadYv1ekNdo9v8baQVjzH90h6fN
W99doGKJMx0jmUTZDZUu3ai9Iwd0HFcZ1P8L/2Kt2zRlodt5lYyXhDFW6aXRGH4c
+8dODmIWTqVJnZzmZQpnSZCrxob3vJpOtgjh29KzVyFIGih1qVqZu/WeFPoM6xvr
7oomKEzaqneobVpovbcg6gZ86r4uT0DE/jIU//hPJabh2UeIuSM8CUc6JGI2Mbp9
dY7APILXSceg1buIEN0C1KaT75fEYQIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFDkN
DA6beje2xRZVdfO4I6PYcLbQMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC8yREUxNjJDMDYxODMxMUYxQTA2QjBFRTZDRTFEMzhCMC5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmspKMA0GCSqGSIb3DQEB
CwUAA4IBAQC8L75DZ5G0HY7zswbMv57Wi8NNYpCs507H0Wd+/qnG4HX7SQyPfJl0
RAWHD/A9/HJ3376jryzc0Bzwtl8sqyZ0C7qQ1nYghs+uTtJMm49/0YwUtHIXlxcY
5uZgmt79qVdk7f02panfbyqp17GR0Lx6lQ5u0MEfwGUZct+qej7QsAk67MwF9et3
U+2QcgUFevbiPZHG5YcpNjF32SYwpeZGpAHauqTkFcdtxZDL3i0Xm61Z5U156YjE
Bfgq4buTw+2Fz3hWKEBIfWSQKO3dkaOs+gQAyLDyUppKpvuJ/kBEFKeLaa5tgQVL
mXdCmlS/kANrLIWSdffUsDEnxJDyLh0d
-----END CERTIFICATE-----
Generated at Sat Jun 13 05:53:40 2026 by rpki-client